Recorded Webinars

Lancope’s Director of Security Research, Tom Cross, examines the five stages of grief that organizations seem to pass through as they come to terms with security risks, and how far we’ve come regarding Industrial Control Systems.

Hear about:

• The state of Control System security vulnerabilities
• Attack activity that is prompting a change in perspective
• The unique, long term challenges associated with protecting SCADA networks
• How anomaly detection can play a key role in protecting SCADA systems now

By nature, humans are inclined to trust. Unfortunately, attackers are often successful in breaching large enterprises by targeting specific individuals and utilizing social engineering to obtain confidential information. Once an adversary is able to gain enough data through social media or other channels, they can pose as an authentic user with valid credentials, bypassing traditional security measures. 

Join Lancope’s Joey Muniz, aka The Security Blogger, to hear about his successful, real-life experiments in using social engineering to easily compromise high-profile targets. Attendees will learn about:

·       The dangers of insider threats

·       How attackers are leveraging social media to compromise targets

·       Best practices for defending network interiors from attackers with authentic credentials

The release of Mandiant’s APT1 report describing computer network attacks tied to China was this year’s shot heard ‘round the world (so far) for cyber security. A number of organizations have released lists of technical indicators of compromise, such as IP addresses and Domain Names associated with these attacks. Lancope’s StealthWatch Labs research team has discovered and published additional indicators of APT1 that have not yet been published elsewhere.

Of course, when indicators like these are published, you can assume that the attackers won’t be using them any more, and so real time monitoring for these addresses may not be valuable. StealthWatch provides a unique way to look back into past activity that has occurred on a computer network in search of evidence that these addresses were being accessed when they were still active. 

Join this webinar to learn about Lancope’s research results and discover how to determine whether APT1 has successfully compromised your network. Lancope’s Director of Security Research, Tom Cross, will shed light on exactly what organizations should be looking for in light of this new research.

With so many new threat actors out there, IP reputation is becoming increasingly critical for effectively combating attacks. Under today’s security paradigm, administrators need to know not only about the bad guys lurking on the Internet, but also about the ones operating inside the network perimeter.

 Lancope uniquely provides both internal and external host reputation, better preparing organizations to: combat APTs and insider threats, address BYOD challenges, and deliver actionable information for security teams. 

Join Lancope and learn how to leverage internal host reputation to uncover a wide range of suspicious user behaviors such as:

• Sending out an unusual amount of traffic
• Communicating with known, bad external hosts
• Accessing restricted areas of the network
• Spreading malware 

With each passing year, the security threats facing computer networks have become more technically sophisticated, better organized and harder to detect. At the same time, the consequences of failure to block these attacks have increased. In addition to the economic consequences of financial fraud, we are seeing real-world attacks that impact the reliability of critical infrastructure and national security.

Join Lancope's Director of Security Research to learn about five key challenges that computer security professionals face in 2013, including:

1. State-sponsored espionage and sabotage of computer networks
2. Monster DDoS attacks
3. The loss of visibility and control created by IT consumerization and the cloud
4. The password debacle
5. Insider threats

Featuring:

Participants will learn:

• Why modern attacks cannot be thwarted by traditional, preventative controls
• Why agencies are still getting breached despite investments in flow analysis, often without even knowing it
• How to obtain the security context necessary to fend off today’s threats
• How network analysis and visibility (NAV) tools like flow-based monitoring can detect attack activity prior to data exfiltration

Attendees will learn how to:                                                                                                 

• gain complete network visibility across all devices without having to install additional software or deploy expensive probes
• detect anomalous behavior originating from users’ personal smartphones, tablets or laptops
• quickly and easily uncover externally-launched, zero-day attacks, and internal threats – regardless of the device being used
• deliver high levels of mobile performance

Dowload Presentation

Attendees will learn how to:

• Create a distributed sensor grid for continuous visibility
• Use flow-based network behavioral analysis to protect against cyber threats
• Demonstrate compliance (NIST 800, CNCI, TIC)

Download Webinar Presentation

Organizations today must drive results in increasingly competitive environments with fewer resources and shorter timeframes. Next generation security threats, movement toward the cloud and the emergence of BYOD require agile decision capabilities in real time that effect real outcomes. The network plays a fundamental role in delivering critical information – and visibility into that network is becoming increasingly critical. Organizations face substantial risk from cyber threats that bypass traditional security technologies. 

Join Lancope and Cisco, who have partnered to provide unprecedented network insight and protection for large, global enterprises. 

Attendees will learn:

1. How NetFlow helps prepare for current and future market trends, including BYOD and Cloud
2. Why the network plays a critical role in protecting against cyber threats
3. What network devices enable visibility from the core to the edge
4. How to gain context and increased visibility for accelerated incident response

Download webinar presentation

Discover how to effectively leverage NetFlow for comprehensive, end-to-end network visibility and forensic intelligence to quickly and efficiently troubleshoot of a wide range of network performance and security issues.

Learning points:

• Improvements over previous Catalyst 6500 Generations
• Use NetFlow for security, network performance and forensics
• Get advanced Flexible NetFlow features from almost any point in the network
• Reduce the need for expensive, packet-based technologies
• Increasing IT staff’s operational readiness

Learn how you can get NetFlow from your Cisco Catalyst 3KX to gain in-depth visibility into network traffic and its patterns for usage/billing, monitoring/security and capacity planning.

Attendees will learn how to:

• Increase network visibility
• Detect traffic patterns and data usage trends
• Identify types of applications in different parts of the network
• Mitigate network attacks
• Enforce policies to limit access
• Deduplicate NetFlow per-interface

With technology trends like IT consumerization and virtualization invading the enterprise, it is becoming infinitely more difficult to obtain visibility into the corporate network. To help address this challenge, Cisco has recently added true, flexible NetFlow support to its Catalyst 4500 series of switches.

 Through the use of flow-based monitoring tools such as Lancope’s StealthWatch, organizations can leverage existing infrastructure like the Catalyst 4500 to gain end-to-end network visibility and actionable insight for improved performance and security.

Join Lancope and Cisco to learn about how these advanced features and increased intelligence can be used to vastly improve your network and security operations.

Lancope’s Director of Security Research, Tom Cross, examines the five stages of grief that organizations seem to pass through as they come to terms with security risks, and how far we’ve come regarding Industrial Control Systems.

Hear about:

• The state of Control System security vulnerabilities
• Attack activity that is prompting a change in perspective
• The unique, long term challenges associated with protecting SCADA networks
• How anomaly detection can play a key role in protecting SCADA systems now

Learn how CMU uses Lancope's StealthWatch System to increase network visibility, enhance network security and improve network performance across its massive 16,000-node network.

Specifically, you'll discover how CMU utilizes StealthWatch to:

• Enhance visibility across its entire network for faster Mean Time to Know (MTTK)
• Improve security decision-making
• Detect and mitigate external threats
• Monitor and detect anomalies on internal hosts
• Identify machines/users running P2P applications
• Determine root causes of network slowdowns

Learn how to use flow-based technologies to:

• Gain real-time visibility of applications and hosts on the network
• Enforce acceptable usage policies
• Rapidly troubleshoot network issues
• Pinpoint problem segments
• Ensuring maximum network availability

Learn how to:

• Gain real-time visibility at the edge and core of the network
• Isolate the root cause of problems on the network
• Proactively monitor for threats impacting network and application availability
• Enforce policy at the edge of the network, provides maximum security
• Promote network performance and availability
• Gain a layered, defense-in-depth security

Lancope’s Director of Security Research, Tom Cross, examines the five stages of grief that organizations seem to pass through as they come to terms with security risks, and how far we’ve come regarding Industrial Control Systems.

Hear about:

• The state of Control System security vulnerabilities
• Attack activity that is prompting a change in perspective
• The unique, long term challenges associated with protecting SCADA networks
• How anomaly detection can play a key role in protecting SCADA systems now

By nature, humans are inclined to trust. Unfortunately, attackers are often successful in breaching large enterprises by targeting specific individuals and utilizing social engineering to obtain confidential information. Once an adversary is able to gain enough data through social media or other channels, they can pose as an authentic user with valid credentials, bypassing traditional security measures. 

Join Lancope’s Joey Muniz, aka The Security Blogger, to hear about his successful, real-life experiments in using social engineering to easily compromise high-profile targets. Attendees will learn about:

·       The dangers of insider threats

·       How attackers are leveraging social media to compromise targets

·       Best practices for defending network interiors from attackers with authentic credentials

With each passing year, the security threats facing computer networks have become more technically sophisticated, better organized and harder to detect. At the same time, the consequences of failure to block these attacks have increased. In addition to the economic consequences of financial fraud, we are seeing real-world attacks that impact the reliability of critical infrastructure and national security.

Join Lancope's Director of Security Research to learn about five key challenges that computer security professionals face in 2013, including:

1. State-sponsored espionage and sabotage of computer networks
2. Monster DDoS attacks
3. The loss of visibility and control created by IT consumerization and the cloud
4. The password debacle
5. Insider threats

Featuring:

Participants will learn:

• Why modern attacks cannot be thwarted by traditional, preventative controls
• Why agencies are still getting breached despite investments in flow analysis, often without even knowing it
• How to obtain the security context necessary to fend off today’s threats
• How network analysis and visibility (NAV) tools like flow-based monitoring can detect attack activity prior to data exfiltration

Taking a page from physical security to defend against elite threats

There are no phrases that inspire thoughts of impenetrable security more than “Fort Knox.” Like most networks today, Fort Knox boasts a hardened layer of perimeter security to keep outsiders from intruding, however, the top threat to the facility is not outsiders, but malicious insiders. The facility therefore also needs to monitor for suspicious activities being conducted inside its gates, just as IT administrators should be doing on their internal networks.

Join Lancope to discover how collecting and analyzing NetFlow can provide the comprehensive network visibility needed to swiftly detect malicious traffic inside the network, including botnets, insider attacks and APTs.

Learn about:

• The various types of attacks and attackers infiltrating today’s networks
• The security gaps left by perimeter- and signature-based defenses
• How to strengthen network security with internal monitoring
• How to turn loads of network data into actionable intelligence

Download Presentation

Flow-based network monitoring solutions can help ease the transition to IPv6 by tracking how network devices and applications behave before, during and after the cutover, helping to mitigate any anomalies before they become a serious issue. Join Lancope to learn how NetFlow can help governments and enterprises make this important conversion.   

Download Presentation

Join this webinar to hear Tom Cross, Lancope’s newly appointed Director of Security Research, provide a rich overview of the threat landscape and the strategies needed to combat today’s most prominent threats, including: 
    
    • Hacktivism
    • Insider Threats
    • Botnets and Malware
    • Organized Crime
    • The Advanced Persistent Threat (APT)

Download Presentation

Join Lancope and our guest Forrester Consulting to hear more about the benefits of StealthWatch and how they translate into high financial returns across multiple IT functions, including:

• Alternative-solution cost avoidance
• Maintenance cost savings for replaced third-party solution(s)
• Reduction in efforts for security incident detection and management
• Reduction in end user downtime due to security events
• Improved visibility to help desk and tier-one to tier-three support
• Networking staff productivity gain

Download Presentation

Attendees will learn how to:                                                                                                 

• gain complete network visibility across all devices without having to install additional software or deploy expensive probes
• detect anomalous behavior originating from users’ personal smartphones, tablets or laptops
• quickly and easily uncover externally-launched, zero-day attacks, and internal threats – regardless of the device being used
• deliver high levels of mobile performance

Dowload Presentation

Attendees will learn how to:

• Create a distributed sensor grid for continuous visibility
• Use flow-based network behavioral analysis to protect against cyber threats
• Demonstrate compliance (NIST 800, CNCI, TIC)

Download Webinar Presentation

Learn how to leverage flow data to:

• Proactively detect attacks
• Mitigate APTs
• Gain forensic intelligence
• Improve situational awareness

Download Webinar slides

Organizations today must drive results in increasingly competitive environments with fewer resources and shorter timeframes. Next generation security threats, movement toward the cloud and the emergence of BYOD require agile decision capabilities in real time that effect real outcomes. The network plays a fundamental role in delivering critical information – and visibility into that network is becoming increasingly critical. Organizations face substantial risk from cyber threats that bypass traditional security technologies. 

Join Lancope and Cisco, who have partnered to provide unprecedented network insight and protection for large, global enterprises. 

Attendees will learn:

1. How NetFlow helps prepare for current and future market trends, including BYOD and Cloud
2. Why the network plays a critical role in protecting against cyber threats
3. What network devices enable visibility from the core to the edge
4. How to gain context and increased visibility for accelerated incident response

Download webinar presentation

Learn how flow collection and analysis can provide the end-to-end visibility required to make faster, more informed decisions that strengthen risk posture and network resilience.

Learning points:

• Achieve complete network visibility across physical and virtual networks
• Leverage visibility for improved situational awareness
• Improve network and security operations
• Streamline the overall cost and complexity of IT operations
• Tackle the latest security threats facing today’s enterprises (advanced persistent threats, insider attacks, etc.) 
• Enhance compliance
• Gain crucial network forensic intelligence

Learn about today’s most prominent types of attacks based on the risk they currently pose to your organization, as well as how that risk will evolve in 2012. Also learn how leveraging NetFlow (and other flow data) can protect you against the full spectrum of threats facing today’s enterprises, including:

• Advanced Persistent Threats (APTs)
• Insider Threats
• Industrialized Attacks
• Employee Misuse & Abuse
• Fully Automated Attacks

Discover how to effectively leverage NetFlow for comprehensive, end-to-end network visibility and forensic intelligence to quickly and efficiently troubleshoot of a wide range of network performance and security issues.

Learning points:

• Improvements over previous Catalyst 6500 Generations
• Use NetFlow for security, network performance and forensics
• Get advanced Flexible NetFlow features from almost any point in the network
• Reduce the need for expensive, packet-based technologies
• Increasing IT staff’s operational readiness

Learn how you can get NetFlow from your Cisco Catalyst 3KX to gain in-depth visibility into network traffic and its patterns for usage/billing, monitoring/security and capacity planning.

Attendees will learn how to:

• Increase network visibility
• Detect traffic patterns and data usage trends
• Identify types of applications in different parts of the network
• Mitigate network attacks
• Enforce policies to limit access
• Deduplicate NetFlow per-interface

Attendees will learn to use NetFlow to: 

• Gain virtual visibility
• Troubleshooting security, network and application performance faster
• Enhance virtual network security
• Track VMotion movement
• Monitor intra-VM communications
• Demonstrate compliance for virtual environments

With technology trends like IT consumerization and virtualization invading the enterprise, it is becoming infinitely more difficult to obtain visibility into the corporate network. To help address this challenge, Cisco has recently added true, flexible NetFlow support to its Catalyst 4500 series of switches.

 Through the use of flow-based monitoring tools such as Lancope’s StealthWatch, organizations can leverage existing infrastructure like the Catalyst 4500 to gain end-to-end network visibility and actionable insight for improved performance and security.

Join Lancope and Cisco to learn about how these advanced features and increased intelligence can be used to vastly improve your network and security operations.

Learn how, by collecting and analyzing NetFlow data from the network, administrators can gain unparalleled levels of visibility, accountability and measurability into both individual host and broad network communications required for maintaining ongoing PCI compliance.

Learn how CMU uses Lancope's StealthWatch System to increase network visibility, enhance network security and improve network performance across its massive 16,000-node network.

Specifically, you'll discover how CMU utilizes StealthWatch to:

• Enhance visibility across its entire network for faster Mean Time to Know (MTTK)
• Improve security decision-making
• Detect and mitigate external threats
• Monitor and detect anomalies on internal hosts
• Identify machines/users running P2P applications
• Determine root causes of network slowdowns

Discover how the FlowReplicator, the first commercially available virtual UDP switch to rapidly replicate and redistribute any unidirectional UDP datagrams, can help improve your network performance by:

• Simplifying network device configuration
• Reducing network traffic
• Decreasing load on routers and switches
• Ensuring fault tolerance

Learn how to use flow-based technologies to:

• Gain real-time visibility of applications and hosts on the network
• Enforce acceptable usage policies
• Rapidly troubleshoot network issues
• Pinpoint problem segments
• Ensuring maximum network availability

Learn how to:

• Gain real-time visibility at the edge and core of the network
• Isolate the root cause of problems on the network
• Proactively monitor for threats impacting network and application availability
• Enforce policy at the edge of the network, provides maximum security
• Promote network performance and availability
• Gain a layered, defense-in-depth security